package com.example.springsecurityoauth2demo.config;

import org.springframework.context.annotation.Configuration;
import org.springframework.security.config.annotation.web.builders.HttpSecurity;
import org.springframework.security.oauth2.config.annotation.web.configuration.EnableResourceServer;
import org.springframework.security.oauth2.config.annotation.web.configuration.ResourceServerConfigurerAdapter;

/**
 * @Classname: ResourceServce
 * @Description: 资源服务器
 * @Date: 2021/3/18 21:44
 * @Created: by Wang Xu
 */
@Configuration
@EnableResourceServer
public class ResourceServerConfig extends ResourceServerConfigurerAdapter {
    @Override
    public void configure(HttpSecurity http) throws Exception {
        http.authorizeRequests()
                .anyRequest()
                .authenticated() // 所有的请求都必须被认证
                .and()
                .requestMatchers()
                .antMatchers("/user/**"); // 配置需要保护的资源路径
    }
}
